Searching symlinks software vulnerabilities

UNIX news readers tin and rtin create the /tmp/

/tmp/tin_log | permissions | attackers | insecure | symlinks | writable | symlink | readers | modify | attack | allows | create | follow | files | which | user | news | UNIX | rtin | file | tin | via |

UNIX news readers tin and rtin create the /tmp/.tin_log file with insecure permissions and follow symlinks, which allows attackers to modify the permissions of files writable by the user via a symlink attack.


Multiple shell programs on various Unix systems

including | programs | Multiple | systems | various | shell | Unix |

Multiple shell programs on various Unix systems, including (1) tcsh, (2) csh, (3) sh, and (4) bash, follow symlinks when processing << redirects (aka here-documents or in-here documents), which allows local users to overwrite files of other users via a symlink attack.


StarOffice 5.2 follows symlinks and sets world-

/tmp/sofficetmp | world-readable | permissions | StarOffice | directory | symlinks | follows | allows | local | files | which | using | read | sets | user |

StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp directory, which allows a local user to read files of the user who is using StarOffice.


Check Point Firewall-1 3.0b through 4.0 SP1 fol

world-writable | Firewall-1 | privileges | compiling | temporary | symlinks | firewall | through | creates | follows | Policy | modify | which | could | local | allow | users | Point | rules | Check | gain | file | 30b | SP1 | cpp |

Check Point Firewall-1 3.0b through 4.0 SP1 follows symlinks and creates a world-writable temporary .cpp file when compiling Policy rules, which could allow local users to gain privileges or modify the firewall policy.


mandb in the man-db package before 2.3.16-3 all

overwrite | arbitrary | command | options | package | allows | before | man-db | 2316-3 | files | local | mandb | users | line | via |

mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow symlinks.


Buffer overflow in the realpath function in nfs

nfs-server | rpcmountd | overflow | function | realpath | through | Buffer | Linux | used | SUSE |

Buffer overflow in the realpath function in nfs-server rpc.mountd, as used in SUSE Linux 9.1 through 10.0, allows local users to execute arbitrary code via unspecified vectors involving mount requests and symlinks.


Directory traversal vulnerability in the contai

contains_dot_dot | vulnerability | user-assisted | src/namesc | overwrite | Directory | attackers | arbitrary | traversal | function | certain | allows | remote | files | GNU | via | tar |

Directory traversal vulnerability in the contains_dot_dot function in src/names.c in GNU tar allows user-assisted remote attackers to overwrite arbitrary files via certain //.. (slash slash dot dot) sequences in directory symlinks in a TAR archive.


Directory traversal vulnerability in extract.c

vulnerability | user-assisted | overwrite | arbitrary | Directory | traversal | attackers | extractc | certain | remote | before | allows | files | 15a84 | star | via |

Directory traversal vulnerability in extract.c in star before 1.5a84 allows user-assisted remote attackers to overwrite arbitrary files via certain //.. (slash slash dot dot) sequences in directory symlinks in a TAR archive.


Software vulnerabilities results 1 to 9 of 9     
Page: 1